Protected Web Page Detection

info Nessus Plugin ID 40665


Some web pages require authentication.


The remote web server requires HTTP authentication for the following pages. Several authentication schemes are available :

- Basic is the simplest, but the credentials are sent in cleartext.

- NTLM provides an SSO in a Microsoft environment, but it cannot be used on both the proxy and the web server. It is also weaker than Digest.

- Digest is a cryptographically strong scheme. Credentials are never sent in cleartext, although they may still be cracked by a dictionary attack.

Plugin Details

Severity: Info

ID: 40665

File Name: protected_web_pages.nasl

Version: Revision: 1.11

Type: remote

Family: Web Servers

Published: 8/21/2009

Updated: 10/4/2016

Vulnerability Information

Excluded KB Items: Settings/disable_cgi_scanning